Web browsers and especially Google Chrome for its huge share of users, are a priority target for many cybercriminals. Some time ago, while talking to a cyber security expert, he told me that the fact that web browsers are the focus of many security alerts should not be interpreted to mean that they are less developed than other types of applications (in fact, security is an aspect in which it is actively emphasis on its development), but because they are the target of the vast majority of attacks as well as investigations carried out by experts.

That’s interesting and reminds me of the days when Apple computer users used to brag that they didn’t need a security solution because there were no threats thanks to Mac OS security. The reality was that according to user fees it was more “profitable” to attack Windows, but as Macs began to gain popularity, it quickly became clear that their operating system was not protected from threats.

So with so many guns pointing at the same target from different angles, It is inevitable that there will be some interference from time to time, that means a new security issue is identified. As I have already commented several times, the goal and what we have to pay attention to is the speed of reaction of the developers, in this case responsible for Google Chrome, to publish an update that fixes the said problem.

Well, we found ourselves in exactly this situation again. As we can read on the browser update blog, A security vulnerability has been discovered in Google Chrome and an update has been released to fix it.. The problem was assigned the identifier CVE-2023-3079 and, as stated by the company itself, its use was detected in the wildwhich is a term used by the Anglo-Saxons to refer to the fact that evidence of its use has already been found on the Internet.

So Google Chrome users need to update their browser to the version 114.0.5735.110 if using it on Windowsor until 114.0.5735.106 if you have a macOS or Linux operating system. As is common (and logical), Google provided some hints about the vulnerability, suggesting that it is a type of confusion bug (just like CVE-2023-2033), but was not more specific to prevent cybercriminals from deducing how to exploit thereby further compromising user security .

Unlike CVE-2023-2033, which was rated Critical, CVE-2023-3079 assigns it a “High” rank, one level below the previous one. In other words, it’s potentially not that dangerous, but we still need to protect ourselves against it as a priority. So once again we recommend updating Google Chrome immediately. And if you’re still not sure how to do it, here we give you all the instructions to get it done in less than a minute.